Network World - IBM today said one of its researchers has made it possible for computer systems to perform calculations on encrypted data without decrypting it.

IBM says the breakthrough would let computer services, such as Google Inc. or others storing the confidential, electronic data of others, fully analyze data on their clients' behalf without expensive interaction with the client and without seeing any of the private data.

The idea is a user could search for information using encrypted search words, and get encrypted results that they could then decrypt on their own. Other potential applications include enabling filters to identify spam, even in encrypted e-mail, or protecting information contained in electronic medical records. The breakthrough might also one day enable computer users to retrieve information from a search engine with more confidentiality, IBM said.

IBM Researcher Craig Gentry calls the technology "fully homomorphic encryption," which uses a mathematical system known as an "ideal lattice," that lets people fully interact with encrypted data in ways previously thought impossible.

Using the technology could also bolster the cloud computing model where a service provider hosts the confidential data of others. It might better enable a service to perform computations on clients' data at their request, such as analyzing sales patterns, without exposing the original data.

"Fully homomorphic encryption is a bit like enabling a layperson to perform flawless neurosurgery while blindfolded, and without later remembering the episode. We believe this breakthrough will enable businesses to make more informed decisions, based on more studied analysis, without compromising privacy. We also think that the lattice approach holds potential for helping to solve additional cryptography challenges in the future, " said Charles Lickel, vice president of Software Research at IBM in a release.

According to an article on Forbes.com, Gentry's solution has a catch: It requires immense computational effort. In the case of a Google search, for instance, performing the process with encrypted keywords would multiply the necessary computing time by around 1 trillion, Gentry estimates.

IBM said two fathers of modern encryption -- Ron Rivest and Leonard Adleman -- together with futurist Michael Dertouzos, introduced and struggled with the notion of fully homomorphic encryption about 30 years ago. Although advances through the years offered partial solutions to this problem, a full solution that achieves all the desired properties of homomorphic encryption did not exist until now.

Comment Recommend Digg Twitter ShareThis

Email Print Send Feedback Reprints

Reprinted with permission from

For more information about enterprise networking, go to NetworkWorld.com
Story copyright 2009 Network World, Inc. All rights reserved.

Jump to comments

IBM

Additional Resources

WHITE PAPER

EFD vs. HDD - What You Need to Know

Enterprise flash drives provide a new Tier 0 storage layer capable of delivering high I/O performance at a very low latency. Proper use of EFDs in an Oracle environment can deliver increased performance compared to fibre channel drives. Read the recommendations for identification of the best DB components for EFDs.

WHITE PAPER

Gartner Research Report: Magic Quadrant for Application Delivery Controllers, 2009

The market for products to improve the delivery of application software over networks remains dynamic and innovative. Vendors focused on solving enterprises' most-pressing application problems have become the top players.

WHITE PAPER

Eight Criteria for Server Load Balancing

Server load balancers are a simple yet highly effective means to scale an application environment while ensuring its availability. Today's solutions should also address application performance and security. Read about the top eight criteria you should consider when choosing a server load balancer and how Citrix NetScaler meets those requirements.

What People Are Saying

5 comments | Add new

See all comments (5) | Add new

White Papers & Webcasts

An Automated Approach to Compliance
Account for Compliance in Your Virtualized Environment. Read Now.

BRM: What You Can Do To Reduce Risk In Challenging Times
Watch this webcast now!

Getting the Job Done - Comparing Approaches for Desktop Software Control
Download This Whitepaper Now!

Strategies for Driving Down IT Support Costs with Lite ITIL Practices
View this now!

US Government Prevents Malware with Application Whitelisting
Download This Case Study Now!

A Holistic Approach to Compliance Makes Business Sense
Watch this on-demand webcast now!

Protecting Against Targeted Cyber Attacks with Application Whitelisting
Download This Whitepaper Now!

Achiving Compliance Through Good Governance
Watch this complimentary video today!

For PCI, the Future is Now
Learn how to comply with the global standard without breaking the bank.

Data in Action: Making the Planet Smarter
Register Now

All White Papers | All Webcasts

Computerworld Reports

Computerworld Technology Briefing: More than Business Value

Computerworld Briefing: Staffing for Intelligence

8 Questions To Ask About Your Intrusion-Security Solution

All Computerworld Reports

Business Continuity Zone
An organization's business continuity plan helps keep critical functions running during an emergency–the power fails, a virus is unleashed on your network, a natural disaster has occurred. Even the slightest downtime or loss of data can cripple your operation. CDW can help you prevent disaster by implementing a well-planned recovery strategy.
Click here to visit the Zone

See All Zones